Phylum Dev Cli Versions Save

Command line interface for the Phylum API

v6.4.0-rc1

2 weeks ago

Added

  • PNPM v9 lockfile support
  • Support for parsing go.mod files with a Go directive of version 1.17 and higher

Changed

  • Improved go.sum file parsing to prevent the parser from listing unused packages

Fixed

  • Sandboxed processes sticking around after CLI is killed with a signal
  • Lockfiles with local versions breaking the pip parser

v6.3.0

1 month ago

Fixed

  • Improve parsing of non-UTF-8 encoded pom.xml files
  • SPDX SBOM registry determination from downloadLocation
  • SPDX parsing adding the described package as a dependency
  • SPDX parsing certain text files with optional package fields

v6.2.0

2 months ago

Fixed

  • Crashes when parsing invalid lockfiles

Removed

  • phylum group transfer subcommand
  • Owner email from phylum group list results

v6.1.2

3 months ago

Fixed

  • Improved sandboxing error message for unsupported kernel versions

v6.1.1

3 months ago

Fixed

  • Python lockfile generation with pip in ~/.local
  • Python lockfile generation with pyenv

v6.1.1-rc1

4 months ago

Fixed

  • Python lockfile generation with pip in ~/.local
  • Python lockfile generation with pyenv

v6.1.0

4 months ago

Added

  • Parse manifest files with non-standard names

v6.0.1

5 months ago

Fixed

  • Lockfile generation for gradle installed under /opt/gradle

v6.0.0

5 months ago

Added

  • Add CVE data to issueDetails entries when --json flag is used for phylum package

Changed

  • Renamed multiple CLI arguments to avoid the term lockfile in places where manifests are also accepted
  • Renamed lockfiles key in phylum status --json output to dependency_files

v6.0.0-rc3

5 months ago

Added

  • Add CVE data to issueDetails entries when --json flag is used for phylum package

Changed

  • Renamed multiple CLI arguments to avoid the term lockfile in places where manifests are also accepted
  • Renamed lockfiles key in phylum status --json output to dependency_files